Hey Paul,

Hm, this is really a subjective matter and to be honest we are not entirely sure why the menu item is considered as phishing link. It could be the heuristic analyzer algorithm used by the kaspersky detecting something that we don't know regarding on the menu link. It could be the url format and wording itself that lead the antivirus to detect it as phishing. You can refer to the following discussion here regarding on this matter, http://www.webhostingtalk.com/showthread.php?t=1298588 .

I am sorry but I'm afraid we could not do much help here.

Hey Erzul

I will see if i can find a solution and if so post here

thanks

Paul

Thanks Paul. Keep us updated.

from Site Ground:

Hello Paul,

Thank you for contacting our Help Desk.

I carefully checked for you and I confirm that I was unable to locate any malicious/suspicious files or URLs in your site. Here are the results from the scan for the files:
Code:
Scanned Files: 62099
Scanner Hits: 0
Time Taken: 187 (sec)

Here are the results from the URL scan as well:

https://sitecheck.sucuri.net/results/finalbug.net

For the purpose I would kindly ask you to check again.

If you receive another message with the same content, feel free to get back to us.

Best Regards

Olga

@ Erzul do you have something that you could add to this?
eg what is Kaspersky saying to you?
I do not even have a PC so all of this virus stuff is a little bit weird for me

I can not help you more than posting the following screen capture and warning messages available:

The clickable question mark leads to the following text (google translation without correction):

When Kaspersky Internet Security detects a virus or another program presenting a threat to the security of the computer, it displays a notification window containing the following information:
The object type (eg, viruses, Trojan horses, phishing link).
The full name of the object.
Information about the object as a link to the Virus Encyclopedia Kaspersky Lab.
Path to the folder containing the object or to the URL by which it was detected.
Selection of actions that can be performed with the detected object or dangerous in Internet traffic.
You can choose from the following actions:
Repair. Disinfect the object. Before you repair the file, Kaspersky Internet Security creates a backup copy in case it would be necessary to restore it later or it would be repaired without compromising its integrity.
Remove. Delete the object. Before deleting the file, Kaspersky Internet Security creates a backup copy in case it would be necessary to restore it later or it would be repaired without compromising its integrity.
Save to reports only. Blocks access to the detected object but perform no action, except to keep the information about it in the report.
Do not block. Allows access to the web page that is a dangerous object of Internet traffic.
Block. Denies access to the web page that is a dangerous object of Internet traffic.
Delete the archive. Deletes the archive containing the detected object.
Ignore. Blocks access to the object, but perform no action.
Apply to all similar cases
The box enables / disables the application of the selected action to all objects of this type for the current session of File Anti-Virus, Web Anti-Virus or scan job.
The box is unchecked by default.
The current session is meant the period of operation of File Anti-Virus or Anti-Virus Internet since its launch until it stops or until you restart the application, and the duration of running the virus scan task from its launch to the end.

The clickable details link leads to:
http://www.viruslist.com/fr/search?VN=&referer=kismac

Paul,

Why don't you try to contact Kaspersky directly?
Who better than Kaspersky can explain the reason and give a reason/solution?

Hi Supporter,

Thanks for the heads up on this.

Paul,

Supporter was right. Perhaps you can try to consult with Kaspersky so they can have a better explanation and solution.

Hi guys

I posted in their forum a couple of hours ago.

Will post as soon as I know more

thanks

Paul

Hi Paul,

Thanks for the heads up on this one